Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76BBDB0EF91911EDB95B701F4AD9E6FC.roa
File: 76BBDB0EF91911EDB95B701F4AD9E6FC.roa (raw, json)
Hash identifier: B58rWUvCAaq5titjmDSy2Bh5+rfaVRZ13T9Fj6zwZ5g=
Subject key identifier: 4B:B8:9E:3E:52:9A:40:45:06:3A:47:CD:8A:83:F6:88:1E:16:8F:33
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2700
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76BBDB0EF91911EDB95B701F4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:25:28 +0000
ROA not before: Tue 23 May 2023 03:25:24 +0000
ROA not after: Tue 15 Oct 2024 03:25:24 +0000
asID: 399674
IP address blocks: 156.244.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9984 (0x2700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:25:24 2023 GMT
Not After : Oct 15 03:25:24 2024 GMT
Subject: CN=646c3228-4f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c1:0d:f9:44:c5:8d:40:9a:82:68:71:79:08:
7a:4b:c7:e0:c1:9a:01:6a:8d:c1:1e:1c:48:8c:9f:
db:29:c7:39:33:92:9c:8b:60:bd:96:49:19:41:ae:
2a:bf:26:6f:72:aa:e9:b4:9a:cb:62:1c:53:a0:2f:
76:95:7e:d6:50:2a:0b:29:55:a1:3c:ec:40:86:b7:
32:84:89:60:35:0b:98:3f:f6:f6:ac:ef:32:11:9c:
a1:c7:a1:14:52:9f:34:fd:02:56:1e:16:46:b6:6f:
2f:1e:0d:98:83:0d:11:bd:1d:11:34:e7:aa:84:0a:
d6:99:dd:a3:3a:8d:28:d8:e8:ff:93:f7:bc:ac:25:
3e:c8:01:22:f0:08:5b:29:c7:27:9f:c2:e1:fd:77:
38:2e:a3:a0:37:a8:dd:d0:16:53:c5:21:2b:32:35:
d7:38:26:b6:46:0e:a5:e8:8d:1d:6c:be:95:bc:97:
2e:3a:f7:b6:cf:d3:24:ad:cc:45:cd:44:1e:1b:84:
9d:ff:08:37:19:d9:c2:14:83:5b:e7:5a:be:cf:44:
42:fc:da:66:53:06:02:ce:16:dc:d1:06:98:c1:06:
b1:50:3d:64:5c:7b:d1:c3:23:c5:3e:4a:e1:2b:d0:
12:c1:24:94:d4:62:e6:b2:b8:26:7f:cd:f1:4a:3f:
ea:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B8:9E:3E:52:9A:40:45:06:3A:47:CD:8A:83:F6:88:1E:16:8F:33
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76BBDB0EF91911EDB95B701F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.32.0/19
Signature Algorithm: sha256WithRSAEncryption
7b:2f:f7:82:28:e3:d2:e0:92:56:4f:4a:34:2e:b8:c1:57:50:
2d:a0:59:e6:41:94:cc:51:ce:90:04:fd:fd:1a:96:a3:a6:5f:
79:1d:4b:07:eb:c8:91:3b:27:5c:41:94:5a:3d:b5:bc:e2:1d:
5e:36:37:cc:68:af:68:b6:bb:69:b3:04:39:02:08:4a:51:05:
d0:e2:b5:3c:6e:e7:77:f3:84:02:aa:22:77:79:38:32:74:39:
e3:6a:da:7e:d8:e0:16:5f:16:44:75:6d:d0:24:39:95:4d:cd:
d1:62:17:b2:c5:ee:42:ff:87:a8:27:fb:33:f6:f3:b9:27:8f:
26:b0:d1:e0:a4:f2:75:c5:e1:d5:86:ca:bf:10:07:44:60:ce:
69:01:de:a9:ab:92:72:f9:dc:6f:5a:00:7f:ce:d5:59:83:0a:
5c:31:54:73:6a:df:88:c6:76:7a:78:cb:0c:bf:05:34:e7:78:
f4:86:e7:c0:17:22:17:6f:9d:83:e0:ed:bd:8d:4a:f9:77:e9:
47:56:09:71:ad:65:41:b2:8f:2f:56:ac:84:9e:e1:63:38:81:
f9:fe:64:10:a6:3f:7e:3e:51:82:33:8c:2b:4c:af:40:93:97:
05:e6:d7:dd:8d:90:53:70:2c:82:d0:76:ac:8e:ec:f8:a3:ab:
0f:75:13:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:33:19 2024 by rpki-client on console-fra.rpki-client.org